Privacy Policy
Your privacy matters to us. This policy explains how zanoraluthives collects, uses, and protects your personal information when you use our financial services platform.
Last Updated: March 15, 2025 | Effective Date: March 15, 2025
Information We Collect
We collect various types of information to provide you with our financial services and improve your experience on our platform. The information we gather falls into several categories, each serving specific purposes for delivering personalized financial insights and maintaining platform security.
Personal Information
Name, email address, phone number, postal address, date of birth, and government-issued identification numbers when required for financial services compliance.
Financial Information
Account balances, transaction history, investment preferences, risk tolerance assessments, and financial goals you share with us.
- Technical data including IP address, browser type, device information, and operating system
- Usage patterns such as pages visited, features used, and time spent on different sections
- Communication records including support conversations, feedback, and survey responses
- Marketing preferences and communication history with our platform
- Authentication information including login credentials and security questions
- Location data when you enable location services for relevant financial features
How We Use Your Information
Your information enables us to deliver personalized financial services, maintain platform security, and continuously improve our offerings. We're transparent about how each piece of data contributes to your experience and our legitimate business operations.
Primary Uses
We use your personal and financial information primarily to provide our core services: account management, transaction processing, financial analysis, personalized recommendations, and customer support. This includes generating reports, sending account notifications, and helping you make informed financial decisions.
| Data Type | Purpose | Legal Basis |
|---|---|---|
| Account Information | Service delivery and account management | Contract performance |
| Financial Data | Personalized recommendations and analysis | Legitimate interest |
| Technical Data | Platform security and improvement | Legitimate interest |
| Communication Records | Customer support and service quality | Contract performance |
We also use aggregated and anonymized data for research, market analysis, and product development. This helps us understand user trends, identify areas for improvement, and develop new features that benefit our entire user community. Individual users cannot be identified from this aggregated data.
Information Sharing and Disclosure
We maintain strict controls over who can access your information and under what circumstances. Sharing only occurs when necessary for service delivery, legal compliance, or with your explicit consent. We never sell your personal information to third parties for marketing purposes.
Our sharing practices include working with trusted service providers who help us deliver our services, such as payment processors, data analytics providers, and cloud hosting services. These partners are contractually bound to protect your information and use it only for the specific services they provide to us.
Required Disclosures
We may disclose information when required by law, court orders, regulatory requests, or to protect our rights, property, or safety of our users and the public.
Business Transfers
In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction, with continued protection under this policy.
Financial regulations in Australia require us to share certain information with regulatory bodies, tax authorities, and law enforcement agencies when legally mandated. We comply with all applicable Australian Privacy Principles and maintain detailed records of any required disclosures.
Your Rights and Choices
You have significant control over your personal information and how we use it. These rights are designed to give you transparency and control over your data, and we've made it easy to exercise these rights through your account settings or by contacting our privacy team.
Access Your Data
Request a complete copy of all personal information we hold about you, including how it's being used and who it's shared with.
Correct Information
Update or correct any inaccurate or incomplete personal information in your account at any time.
Delete Your Account
Request deletion of your account and associated personal information, subject to legal retention requirements.
Portable Data
Export your data in a structured, commonly used format that you can take to another service provider.
Object to Processing
Opt out of certain types of data processing, including marketing communications and non-essential analytics.
Restrict Processing
Temporarily limit how we process your information while we address concerns or disputes about your data.
How to Exercise Your Rights
Most rights can be exercised directly through your account settings. For more complex requests or if you need assistance, contact our privacy team at privacy@zanoraluthives.com. We respond to all requests within 30 days and provide regular updates on progress for complex requests.
Data Security and Protection
Protecting your financial information is our highest priority. We employ multiple layers of security controls, from encryption and access controls to regular security audits and employee training. Our security measures meet or exceed industry standards for financial services.
All data transmission occurs over encrypted connections using TLS 1.3, and sensitive information is encrypted at rest using AES-256 encryption. We maintain strict access controls, requiring multi-factor authentication for all employee access to user data and maintaining detailed audit logs of all data access.
- Regular security assessments and penetration testing by independent third parties
- 24/7 security monitoring and incident response capabilities
- Employee background checks and ongoing security awareness training
- Secure development practices including code reviews and vulnerability scanning
- Data backup and disaster recovery procedures with regular testing
- Compliance with Australian financial services security requirements and standards
In the unlikely event of a data breach, we have comprehensive incident response procedures that include immediate containment, thorough investigation, user notification within 72 hours when required, and cooperation with relevant authorities. We continuously invest in security improvements and stay current with emerging threats and protection technologies.
Data Retention and Deletion
We retain your information only as long as necessary to provide our services, comply with legal obligations, and protect our legitimate business interests. Different types of information have different retention periods based on their purpose and regulatory requirements.
| Information Type | Retention Period | Reason |
|---|---|---|
| Account Information | Life of account + 7 years | Financial regulations compliance |
| Transaction Records | 7 years after transaction | Tax and audit requirements |
| Marketing Data | Until opt-out or 3 years | Legitimate business interest |
| Technical Logs | 12 months | Security and troubleshooting |
| Support Communications | 3 years | Quality assurance and training |
When information reaches the end of its retention period, we securely delete it using industry-standard data destruction methods. For account closure, most personal information is deleted within 90 days, though some records may be retained longer to meet regulatory requirements. We provide confirmation of data deletion upon request.
International Data Transfers
While zanoraluthives primarily operates within Australia, some of our service providers and technology infrastructure may be located in other countries. When we transfer your information internationally, we ensure appropriate safeguards are in place to protect your privacy rights.
All international transfers comply with Australian Privacy Principles and are protected by standard contractual clauses, adequacy decisions, or other approved transfer mechanisms. We work only with providers who demonstrate adequate data protection standards and contractually commit to protecting your information.
Transfer Safeguards
We use contractual protections, encryption, access controls, and regular audits to ensure your information remains secure during international transfers.
Approved Countries
We primarily transfer data to countries with adequate privacy protections, including EU member states, the UK, Canada, and other approved jurisdictions.
Cookies and Tracking Technologies
We use cookies and similar technologies to enhance your experience, remember your preferences, and understand how you interact with our platform. You have control over cookie settings and can manage them through your browser or our cookie preferences center.
- Essential Cookies: Required for basic platform functionality, security, and account access
- Preference Cookies: Remember your settings, language preferences, and customization choices
- Analytics Cookies: Help us understand usage patterns and improve our services
- Marketing Cookies: Enable personalized content and measure advertising effectiveness
You can accept or reject non-essential cookies through our cookie banner when you first visit our site, and change your preferences at any time through your account settings. Disabling certain cookies may limit some platform functionality, but core financial services will remain available.
Children's Privacy
Our platform is designed for adults and we do not knowingly collect personal information from children under 18 years of age. If we discover that we have collected information from someone under 18 without proper parental consent, we will promptly delete that information.
Parents or guardians who believe their child has provided personal information to us should contact our privacy team immediately. We encourage parents to discuss internet safety and privacy with their children and to monitor their online activities.
Policy Updates and Changes
We regularly review and update this privacy policy to reflect changes in our services, legal requirements, and privacy practices. We'll notify you of significant changes through email, platform notifications, or prominent notices on our website at least 30 days before they take effect.
How We Notify You
For minor updates like clarifications or contact information changes, we'll update the "Last Modified" date at the top of this policy. For material changes that affect how we collect, use, or share your information, you'll receive direct notification and may need to accept the updated terms to continue using our services.
Previous versions of our privacy policy are available upon request, and we maintain detailed records of all policy changes. If you disagree with any changes, you can close your account before the new policy takes effect, and we'll process your information under the previous policy terms during the closure process.
Contact Our Privacy Team
Email: privacy@zanoraluthives.com
Phone: +61400695096
Mail: Privacy Officer, zanoraluthives
Collins St, Melbourne VIC 3000, Australia
Response Time: We respond to all privacy inquiries within 30 days